Trojan.Win32.Agentb.ixji removal guide

The Trojan.Win32.Agentb.ixji is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Trojan.Win32.Agentb.ixji virus can do?

Executable code extraction
Possible date expiration check, exits too soon after checking local time
Creates RWX memory
A process attempted to delay the analysis task.
Reads data out of its own binary image
A process created a hidden window
The binary likely contains encrypted or compressed data.
Uses Windows utilities for basic functionality
Attempts to repeatedly call a single API many times in order to delay analysis time
Creates or sets a registry key to a long series of bytes, possibly to store a binary or malware config
Installs itself for autorun at Windows startup
Attempts to modify proxy settings
Creates a copy of itself
Generates some ICMP traffic
Anomalous binary characteristics

Related domains:

shell.view

godz.bit

How to determine Trojan.Win32.Agentb.ixji?


File Info:
crc32: 372ED4CF
md5: 42a1a325dfa4f06b43060f8760c48f36
name: 42A1A325DFA4F06B43060F8760C48F36.mlw
sha1: 6aa265f9dfe11f8cd49cd85abca6958f4b1d6a0a
sha256: afb35551d90a61ddd32da65cbd208a052c964b3d268ad78716dc1fce5b6a5690
sha512: 8c1fd49978e7277ed4588392910057c8f4e3560add7388c1687088cfe5ee72f69127ef475366c9a79f73651191627ab19c28c06c502e0e92efbc5c025e60bced
ssdeep: 3072:YkVVEHHg4ZAfQBpDrAuzq1C756TZKdIBNGcXu1V/Q8kC98LaWTRfs:YkVUHggLrSA6TZT5u1VFkC98LaWTps
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
0: [No Data]

Trojan.Win32.Agentb.ixji also known as:

Bkav	W32.AIDetect.malware1
K7AntiVirus	Trojan ( 0053305e1 )
Elastic	malicious (high confidence)
DrWeb	BackDoor.IRC.Bot.3503
Cynet	Malicious (score: 100)
CAT-QuickHeal	Trojan.MauvaiseRI.S5252937
ALYac	Trojan.Mint.Jamg.C
Malwarebytes	Malware.AI.1898326176
Zillya	Trojan.GandCrypt.Win32.75
CrowdStrike	win/malicious_confidence_80% (D)
K7GW	Trojan ( 0053305e1 )
Cybereason	malicious.5dfa4f
Cyren	W32/S-15f730e0!Eldorado
Symantec	Packed.Generic.525
ESET-NOD32	a variant of Win32/Kryptik.GDJU
APEX	Malicious
Avast	Win32:Malware-gen
Kaspersky	Trojan.Win32.Agentb.ixji
BitDefender	Trojan.Mint.Jamg.C
NANO-Antivirus	Trojan.Win32.Scar.eyebey
ViRobot	Trojan.Win32.Ransom.314880.G
SUPERAntiSpyware	Trojan.Agent/Gen-Kryptik
MicroWorld-eScan	Trojan.Mint.Jamg.C
Tencent	Win32.Trojan.Agentb.Pcir
Ad-Aware	Trojan.Mint.Jamg.C
Sophos	Mal/Generic-S + Mal/GandCrab-B
Comodo	TrojWare.Win32.Ransom.GandCrypt.C@7ivv6t
BitDefenderTheta	Gen:NN.ZexaF.34758.muW@aSel0@i
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	TSPY_EMOTET.SMB1
McAfee-GW-Edition	BehavesLike.Win32.Dropper.ch
FireEye	Generic.mg.42a1a325dfa4f06b
Emsisoft	Trojan.Mint.Jamg.C (B)
SentinelOne	Static AI – Suspicious PE
Jiangmin	Trojan.GandCrypt.x
Avira	HEUR/AGEN.1117310
eGambit	Unsafe.AI_Score_99%
Antiy-AVL	Trojan/Generic.ASMalwS.248F841
Microsoft	Ransom:Win32/Gandcrab.SF!MTB
ZoneAlarm	Trojan.Win32.Agentb.ixji
GData	Trojan.Mint.Jamg.C
AhnLab-V3	Trojan/Win32.Agentb.C2428130
Acronis	suspicious
McAfee	GenericRXEC-CN!42A1A325DFA4
MAX	malware (ai score=99)
VBA32	BScope.TrojanRansom.GandCrypt
Panda	Trj/Genetic.gen
TrendMicro-HouseCall	TSPY_EMOTET.SMB1
Rising	Malware.Obscure!1.A3BB (CLASSIC)
Ikarus	Trojan.Crypt
MaxSecure	Ransomeware.CRAB.gen
Fortinet	W32/Kryptik.HCUD!tr
AVG	Win32:Malware-gen
Paloalto	generic.ml

How to remove Trojan.Win32.Agentb.ixji?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Trojan.Win32.Agentb.ixji removal guide